hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 05:35:13 +02:00
Code Issues Packages Projects Releases Wiki Activity

Swift: Add numeric barrier for command injection query.

Browse Source
This commit is contained in:
Geoffrey White
2023-09-19 14:09:22 +01:00
parent 903b0f5bab
commit f98de85e36
1 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
swift/ql/lib/codeql/swift/security/CommandInjectionExtensions.qll
View File

@@ -69,3 +69,13 @@ private class CommandInjectionSinks extends SinkModelCsv {
]
}
}
/**
* A barrier for command injection vulnerabilities.
*/
private class CommandInjectionDefaultBarrier extends CommandInjectionBarrier {
CommandInjectionDefaultBarrier() {
// any numeric type
this.asExpr().getType().getUnderlyingType().getABaseType*().getName() = "Numeric"
}
}